CVE-2025-45529 Information

Description

An arbitrary file read vulnerability in the ReadTextAsynchronous function of SSCMS v7.3.1 allows attackers to read arbitrary files via sending a crafted GET request to /cms/templates/templatesAssetsEditor.

Reference

https://gist.github.com/sec-Kode/000fbab6dc649888bc196e76a4076b57 https://github.com/sec-Kode/cve/blob/main/cve2.md